CVE-2026-8036
HIGHDescription
Improper input validation in NI-PAL may allow a local authenticated user to access arbitrary system memory, potentially leading to privilege escalation. This vulnerability affects NI-PAL 26.3.0 and prior versions on Windows and Linux.
CVSS v3.1 Score
EPSS — Exploit Prediction
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| ni | ni-pal |
| linux | linux_kernel |
| microsoft | windows |
| ni | linux_real-time |
References
Frequently Asked Questions
What is CVE-2026-8036? +
How severe is CVE-2026-8036? +
What products are affected by CVE-2026-8036? +
How do I check if I'm vulnerable to CVE-2026-8036? +
Related Vulnerabilities
In NetXDuo version before 6.4.4, a networking support module for Eclipse Foundation ThreadX, in the DHCPV6 client there was an …
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 19 could allow a remote attacker to execute arbitrary code due to …
A possible security vulnerability has been identified in Apache Kafka. By default, the broker property `sasl.oauthbearer.jwt.validator.class` is set to `org.apache.kafka.common.security.oauthbearer.DefaultJwtValidator`. …
Improper Validation of Specified Index, Position, or Offset in Input vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules …
Improper input validation in the GPU driver could allow an attacker to exploit a heap overflow potentially resulting in arbitrary …
Malicious software running in a guest VM can exploit the buffer overflow to achieve code execution on the host in …